2FA Fails To Secure Your iCloud Data

Discussion in 'Apple Music, Apple Pay, iCloud, Apple Services' started by maxosx, Jun 1, 2013.

  1. maxosx macrumors 68020

    Joined:
    Dec 13, 2012
    Location:
    Southern California
    #1
  2. ugahairydawgs macrumors 68020

    ugahairydawgs

    Joined:
    Jun 10, 2010
    #2
    It's kind of like the article says. There is a fine line between security and convenience and ease of use. Google's version can be a real pain in the backside. I think what Apple has done is a good start, but it could be beefed up a bit. My perfect solution would be a scenario where anytime a login happens from a new location it send an email notification to the account.
     
  3. Rigby macrumors 601

    Joined:
    Aug 5, 2008
    Location:
    San Jose, CA
    #3
    Well, this is nothing new. All the 2FA really does is to replace the old security questions when resetting a password. But everything else is still only protected by the account password. E.g., you can log in to someone's icloud.com, read their emails, and remote-wipe their devices without ever being challenged for secondary authentication.

    A key problem with Apple's security system as of today is that everything relies on the strength of your account password. But by frequently forcing the user to manually enter the password on a mobile device (e.g. whenever you install an app or buy something from the store), they make it impractical to use a strong password.
     

Share This Page